NYCPHP Meetup

NYPHP.org

[nycphp-talk] Web app security scanners

Jad madi syntux at gmail.com
Sat Apr 15 17:59:06 EDT 2006


http://securityscanner.lostfiles.de/

and some other cool stuff but not code scanner
http://tamperdata.mozdev.org/

http://cyberai.com/inputfilter/index.php





On Sat, 2006-04-15 at 13:09 -0500, Max Gribov wrote:
> Hello all,
> does anyone know of any opensource/free web app security scanner?
> Basically, I just want something (else besides me) to go through all the
> GET's and POST's on my PHP site and see if XSS/sql injection/etc is
> possible.
> I certainly did an audit of my own code, but another pair of eyes,
> especially automated, would never hurt.
> Something down the lines of Nessuss only for web apps basically.
> I've seen this: www.acunetix.com, and signed up for a trial audit, but
> am wondering if there is something I can actually download.
> I havent seen anything on freshmeat or even google, most things are
> either tutorials or non-free.
> 
> thanks!
> 
> max
> _______________________________________________
> New York PHP Community Talk Mailing List
> http://lists.nyphp.org/mailman/listinfo/talk
> New York PHP Conference and Expo 2006
> http://www.nyphpcon.com
> Show Your Participation in New York PHP
> http://www.nyphp.org/show_participation.php




More information about the talk mailing list